Information Security Engineer - Vulnerability Management

How would you like to join one of the most highly regarded financial institutions in New Jersey with deep roots in the community?  Provident is a successful and highly regarded multi-billion-dollar bank that continues to grow with branches in New Jersey, Eastern Pennsylvania and New York.  Our longevity is a testament to our commitment to placing our employees, customers, and the communities we serve at the center of all we do.  At Provident Bank, we are committed to enhancing our customer and employees’ experience. 

POSITION OVERVIEW:

This position reports to the Chief Information Security Officer.  The Information Security department is responsible for identifying and securing the Bank’s information assets and providing customers, em-ployees, and other stakeholders trust their sensitive information and privacy is protected.

The Information Security Engineer is a management role for a seasoned information security professional with a focus on designing, implementing, and maintaining the technical infrastructure responsible for protecting the Bank’s information assets.  This position also is responsible for managing the Bank’s se-curity operations center, including being the first responder to security incidents. 

KEY RESPONSIBILITIES:

• Develop and integrate cybersecurity designs for systems and networks in line with bank security standards for existing and new technical implementations.
• Manage the delivery of the Bank’s outsourced security operations center (SOC).  The SOC is responsible for managing the Bank’s firewalls, IPS, IDS, SIEM, and identify network security incidents.
• Perform security reviews, identify gaps in security architecture, and develop a security risk management plan
• Operate as the primary stakeholder for Information Security for all new projects related to Information Technology, and Lending business line.  Provide direction, monitor significant activities ensuring the project is delivered successfully.
• Determine the protection needs (i.e. security controls) for Bank systems and 3rd party systems housing bank owned data.
• Define and prioritize essential system capabilities or business function required after significant cyber event.
• Provide advice on technical design concepts to senior risk and technology management (e.g. Chief Information Security Officer, Chief Risk Officer, Senior Technology Officer)
• Provide input to the Risk Management frameworks relating to technical and security implementation risks.

MINIMUM QUALIFICATIONS

• 3-5 years if experience in a technical Information Security role interacting with business lines.
• Knowledge and skill of integration of hardware & software assets while maintain security controls.
• Knowledge and skill of implementing secure computer networking concepts and methodologies. 
• Knowledge and skill of designing secure authentication and authorization processes. 
• Knowledge of Personally Identifiable Information (PII) data security standards.
• Knowledge of confidentiality, integrity, and availability requirements.
• Knowledge of Critical Security Controls, NIST Cybersecurity Framework, and FFIEC Information Security standards. 
• Knowledge of cyber threats and vulnerabilities.
• Knowledge of organization's enterprise information security architecture.
• Skill in translating operational requirements into protection needs (i.e., security controls).
• Skill in applying and incorporating information technologies into proposed solutions.

EDUCATION 

• Bachelor’s degree or equivalent work experience.
   

LICENSES AND/OR CERTIFICATIONS 

•  At least one of: Security+, SSCP, CEH, GIAC, CISSP, CISA, CISM, or comparable certification highly desired.

WORKING CONDITIONS:

Work is performed in a normal office environment. Noise levels are usually moderate. This position involves travel to customers and property locations.

• Prolonged sitting
• Lifting from 5 to 10 lbs. (printer paper, storage boxes)
• Occasional bending or overhead lifting (storing files or boxes)
• The hazards are mainly those present in a normal office setting

This job description may not be all-inclusive. Employees are expected to perform other duties as assigned and directed by management. Job descriptions and duties may be modified when deemed appropriate by management.

Provident Bank recognizes and supports the importance of creating a socially and culturally diverse employee base. We understand, value, and appreciate the unique perspectives that a diverse workforce can contribute to our organization. We put the employee and the customer at the center of strategy because culture is a critical differentiator for why people choose to work here.                                                                                         

We are an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to age 40 and over, color, disability, gender identity, genetic information, military or veteran status, national origin, race, religion, sex, sexual orientation or any other applicable status protected by state or local law.

Pay Details:

$73,600 - $106,100 annually

Please note, the base pay actually offered may vary based upon the candidate's skills and experience, job-related knowledge, education, geographic location, internal equity, and other applicable business and organizational needs. 

This role is incentive eligible based upon company, business, and/or individual goal achievement and performance.

Team members accrue paid time-off (PTO), receive Holiday (PTO) and are eligible to participate in the bank’s Health and Wellness benefits including Medical, Dental and Vision Plans, Flexible and Health Savings Accounts, and a 401(k) Retirement Plan. In addition, the company provides Disability Insurance, an Employee Assistance Program, and Basic Life Insurance. Company sponsored Tuition Disbursement and Loan Repayment programs are also available. Voluntary benefits include Supplemental Life Insurance, Accident, Critical Illness, Hospital Indemnity and Legal plans.